OWASP Juice Shop: Probably the most modern and sophisticated insecure web application
☆15Jan 12, 2023Updated 3 years ago
Alternatives and similar repositories for juice-shop
Users that are interested in juice-shop are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- ☆15Feb 6, 2025Updated last year
- ☆141Oct 4, 2018Updated 7 years ago
- ☆32Jul 5, 2023Updated 3 years ago
- A tool to find domains that are in the same Microsoft tenant☆25Mar 18, 2025Updated last year
- ☆37Dec 3, 2024Updated last year
- Managed Database hosting by DigitalOcean • AdPostgreSQL, MySQL, MongoDB, Kafka, Valkey, and OpenSearch available. Automatically scale up storage and focus on building your apps.
- ☆29Feb 13, 2020Updated 6 years ago
- Active monitoring bug bounty programs tool☆49Jan 21, 2026Updated 5 months ago
- ☆59Apr 8, 2021Updated 5 years ago
- ☆51Apr 2, 2021Updated 5 years ago
- ☆46Oct 7, 2021Updated 4 years ago
- SubCerts is a simple tool that uses certificate transparency logs (via crt.sh) to extract subdomains of a given domain.☆75Jan 6, 2026Updated 6 months ago
- A quick bug bounty guide for beginners☆95May 3, 2025Updated last year
- Android security workshop material taught during the CyberTruck Challenge 2019 (Detroit USA).☆105Aug 17, 2021Updated 4 years ago
- Remote CLI tools at your fingertips☆105Jul 31, 2024Updated last year
- Managed Kubernetes at scale on DigitalOcean • AdDigitalOcean Kubernetes includes the control plane, bandwidth allowance, container registry, automatic updates, and more for free.
- ☆116Apr 25, 2023Updated 3 years ago
- ☆684Oct 31, 2022Updated 3 years ago
- Automation of tokens/api keys testing.☆158Mar 28, 2023Updated 3 years ago
- Archive Alchemist is a tool for creating specially crafted archives to test extraction vulnerabilities.☆237Jul 24, 2025Updated 11 months ago
- This repository holds all the list of advanced XSS payloads that can be used in penetration testing. These payloads can be loaded into XS…☆1,139Jul 16, 2024Updated last year
- The repo contains all the the notes, slides, and study material for my workshop at DEFCON 32 at the Bug Bounty Village☆216Aug 13, 2024Updated last year
- recon for bug hunters☆891May 11, 2026Updated last month
- Gourlex is a simple tool that can be used to extract URLs and paths from web pages.☆256Mar 28, 2024Updated 2 years ago
- vAPI is Vulnerable Adversely Programmed Interface which is Self-Hostable API that mimics OWASP API Top 10 scenarios through Exercises.☆1,340Jan 10, 2025Updated last year
- Managed Database hosting by DigitalOcean • AdPostgreSQL, MySQL, MongoDB, Kafka, Valkey, and OpenSearch available. Automatically scale up storage and focus on building your apps.
- This is only for information about top hacking tools in termux☆471Jan 29, 2023Updated 3 years ago
- DevBrute is a versatile password brute forcing tool designed to tackle a wide range of Social Media accounts and Web Applications. With i…☆234Feb 15, 2025Updated last year
- SSS sorulari burada...☆3,524May 9, 2026Updated 2 months ago
- An hourly updated list of subdomains gathered from certificate transparency logs☆346Oct 13, 2021Updated 4 years ago
- NucleiScanner is a Powerful Automation tool for detecting Unknown Vulnerabilities in the Web Applications☆345Mar 26, 2025Updated last year
- this html file creates a csrf poc form to any http request.☆285Dec 14, 2022Updated 3 years ago
- The Bug Hunters Methodology☆4,372Aug 1, 2023Updated 2 years ago
- My Private Bug Hunting Methodology☆327Nov 27, 2024Updated last year
- Bug Bounty Tools used on Twitch - Recon☆326Sep 6, 2024Updated last year
- Deploy on Railway without the complexity - Free Credits Offer • AdConnect your repo and Railway handles the rest with instant previews. Quickly provision container image services, databases, and storage volumes.
- Bambdas collection for Burp Suite Professional and Community.☆524Jun 16, 2026Updated 3 weeks ago
- Now, the Host is Mine! - Super Fast Sub-domain Takeover Detection!☆386Jun 7, 2023Updated 3 years ago
- hakip2host takes a list of IP addresses via stdin, then does a series of checks to return associated domain names.☆459Apr 27, 2022Updated 4 years ago
- SQL Injection Vulnerability Scanner made with Python☆393Apr 15, 2026Updated 2 months ago
- HackerOne "in scope" domains☆526Jun 30, 2026Updated last week
- Sudomy is a subdomain enumeration tool to collect subdomains and analyzing domains performing automated reconnaissance (recon) for bug hu…☆2,408Jun 27, 2024Updated 2 years ago
- ☆548Jun 26, 2024Updated 2 years ago